
United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Address: COMMISSIONER FOR PATENTS 
• P.O. Box 1450 

Alexandria, Virginia 22313-1450 

www.uspto.gov 



APPLICATION NO. 


FILING DATE 


FIRST NAMED INVENTOR 


ATTORNEY DOCKET NO. 


CONFIRMATION NO. 


10/729,515 


12/05/2003 


Anoop Anantha 


MS3061 16. 1/MSFTP502US 


2367 



27195 7590 01/09/2008 

AMIN. TUROCY & CALVIN, LLP 
24TH FLOOR, NATIONAL CITY CENTER 
1900 EAST NINTH STREET 
CLEVELAND, OH 44114 



EXAMINER 



TRAORE, FATOUMATA 



ART UNIT 



2136 



PAPER NUMBER 



NOTIFICATION DATE 



DELIVERY MODE 



01/09/2008 ELECTRONIC 

Please find below and/or attached an Office communication concerning this application or proceeding. 

The time period for reply, if any, is set in the attached communication. 

Notice of the Office communication was sent electronically on above-indicated "Notification Date" to the 
following e-mail address(es): 

docketl @thepatentattorneys.com 
hholmes@thepatentattorneys.com 
osteuball@thepatentattoraeys.com 



PTOL-90A (Rev. 04/07) 



Office Action Summary 


Application No. 

10/729,515 


Applicant(s) 

ANANTHA ET AL. 


Examiner 
Fatoumata Traore 


Art Unit 

2136 





- The MAILING DATE of this communication appears on the cover sheet with the correspondence address 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 1 33). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1 )£3 Responsive to communication(s) filed on 30 October 2007 . 
2a)D This action is FINAL. 2b)IEI This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 

Disposition of Claims 

4) |3 Claim(s) 1-16. 18-32 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) IEI Claim(s) 1-16, 18-32 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 



Attachments) 

1) Notice of References Cited (PTO-892) 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) 

3) □ Information Disclosure Statement(s) (PTO/SB/08) 

Paper No(s)/Mail Date . 



4) O Interview Summary (PTO-413) 

Paper No(s)/Mail Date. . 

5) C] Notice of Informal Patent Application 

6) □ Other: . 



U.S. Patent and Trademark Office 

PTOL-326 (Rev. 08-06) 



Office Action Summary 



Part of Paper No./Mail Date 20080101 



Application/Control Number: 10/729,515 Page 2 
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DETAILED ACTION 

1 . This is in response to the request for continued examination under 37 CFR 
1.114, filed October 30 th , 2007. Claims 1, 5, 18, and 30-32 have been amended; Claim 
17 cancelled; Claims 1-16 and 18-32 are pending and have been considered below. 



Claim Objections 

2. Claim 31 is objected to because of the following informalities: the claim recites 
the limitation of a data packet comprising: on line 3 after the preamble. Appropriate 
correction is required. 

3. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of 
matter, or any new and useful improvement thereof, may obtain a patent therefor, subject to the 
conditions and requirements of this title. 

4. Claim 30 is drawn to a computer program per se. the means for authenticating, 
the means for authorizing and the means for associating are performed by the 
verification component, which the applicant has defined in the specification (page 6, 
lines 10-25) to encompass: a process running on a processor, a processor, an object, 
an executable, a thread of execution, a program. A computer program is not a series of 
steps or acts 

and this is not a process. A computer program is not a physical article or object and as 
such is not a machine or manufacture. A computer program is not a combination of 
substances and therefore not a compilation of matter. Thus, a computer program by 
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itself does not fall within any of the four categories of invention. Therefore, Claim 30 is 
not statutory. 

Claim Rejections - 35 USC § 102 

5. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

6. Claims 31 and 32 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Corrigan et al (US 6,640,097). 

Claim 31: Corrigan et al discloses a system to provide access control to individual 
properties of an object comprising: 

a. An application programming interface packet to identify a partner 
(authenticates the subscriber ID to verify that the subscriber is authorized 
(column 5, lines 35-40); 

b. A security credential packet to facilitate authorization of the partner 
(Authorized subscriber access through white and black lists) (column 5, lines 50- 
55); and 

c. A security parameter packet inherited by a business object to facilitate 
access to a subscription platform database (the data structure includes an 
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identifier used to indicated a specific object property or set of properties to which 

the permission apply) (column 3, lines 35-40). 
Claim 32: Corriqan et al discloses a system to provide access control to individual 
properties of an object comprising: 

a. At least one security field indicating global security parameters in a 
subscription platform database (Authorized subscriber access through 
white and black lists) (column 5, lines 50-55); 

b. At least one object field associated with an account in the database (the 
portal comprises means for instantiating a payment management class) 
(column 3, lines 25-30); and 

c. At least one class field to associate the security field object( the data 
structure includes an identifier used to indicated a specific object property 
or set of properties to which the permission apply) (column 3, lines 35-40). 

Claim Rejections • 35 USC § 103 

7. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as 
set forth in section 102 of this title, if the differences between the subject matter sought to be patented 
and the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

8. Claims 1-3, 5, 6 and 8 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Cheng (US 7. 096,491) in view of Swift et al (US 7,113,994). 
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Claim I Cheng discloses a system that facilitates access to a plurality of shared 
software objects by disparate entities, comprising: 

a. A platform component that receives a request to access an object 
(application) by an entity (user) (Fig. 3 item 132, Fig. 5 item 132), wherein the 
entity requests access to an object on behalf of another entity, the entity and the 
another entity are each an individual human or a business; 

b. A data store that stores security information on classes of the objects (Fig. 
3, item 124); and 

c. A verification component that employs the security information to verify 
that the entity has permission to call an Application Programming Interface (API) 
for the object or operate on the object (Fig. 3, item 130), the verification 
component permits the another entity to call or operate on the object upon 
verification that the entity has the permission. 

But does not explicitly discloses: wherein the entity requests access to an object on 
behalf of another entity, the entity and the another entity are each an individual human 
or a business or the verification component permits the another entity to call or operate 
on the object upon verification that the entity has the permission. However, Swift et a I 
discloses a system of proxy authentication in a secure network, which further discloses: 
a. Wherein the entity requests access to an object on behalf of another entity 
(authorized proxy client to access a service on behalf of a user) (column 2, lines 
27-35), the entity and the another entity are each an individual human or a 
business (Fig. 7, item 70); 
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b. The verification component permits the another entity to call or operate on 
the object upon verification that the entity has the permission (Fig. 9). 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 
the invention was made to permit an entity to call on behalf of another entity and to 
verify the authenticity of the entity in Chen 's disclosure. One would have been motivated 
to verify this in order to help maintain the integrity of the system by not allowing changes 
to be made to the software by any entity, both known and unknown, scrupulous and 
unscrupulous. 

Claim 2: Cheng and Swift et al discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, and Cheng further 
discloses that the verification component exposes the object is permission exists (Fig. 3, 
item 136). 

Claim 3: Cheng and Swift et a I discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 1 above, and Cheng further 
discloses that the verification component masks the object is permission does not exist 
(Fig. 3, item 138). 

Claim 5. Cheng and Swift et a I discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 1 above, and Cheng further 
discloses that the verification component facilitates that entity receive full access to 
Application Programming Interfaces (API's) and /or object s for which there is a 
business need and partial or limited access to other API's or business objects (during 
subscription process, the user will grant the application privileges to perform only those 
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functions, and to access only those resource, needed for the English to Spanish 
translation) (column 4, lines 54-67). 

Claim 6: Cheng and Swift et al discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 1 above, and Cheng further 
discloses that the data store provides a default or determined security information 
related to a class (Fig. 5). 

Claim 8: Cheng and Swift et al discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 1 above, and Swift et al further 
discloses that the system further comprising a proxy tenant component wherein an 
intermediate entity places calls into a subscription platform service on behalf of another 
entity and achieves access to selected objects in order for the another entity to 
complete a subscription purchase (authorized proxy client to access a service on behalf 
of a user) (column 2, lines 27-35). Therefore, it would have been obvious to one having 
ordinary skill in the art at the time the invention was made to modify the combined 
teaching of Cheng such as to support proxies tenant callers. One would have been 
motivated to do in order to make the system flexible. 

9. Claims 18-30 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Corrioan et al (US 6,640,097) in view of Beckwith et al (US 6,330,598). 



Claim 18: Corrioan et al discloses a system to provide access control to individual 
properties of an object comprising: 
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a. Assigning security options to a class (the platform comprises means for 
controlling mobile subscriber access according to the security criteria) (column 2, 
lines 9-15); and 

b. Inheriting the security options by object members of the class (verification 
of subscriber access rights is an intrinsic part of the session management 
functions provided by the portal (column 9, lines 17-20). 

But does not explicitly discloses a step of Storing one or more security options in a 
database, the security options related to automate billing and provisioning system 
wherein the security options include at least conversion of a subscription from a first 
type to a second type. However, Beckwith et a I discloses a Global service management 
system, which further discloses a step of Storing one or more security options in a 
database, the security options related to automate billing and provisioning system 
wherein the security options include at least conversion of a subscription from a first 
type to a second type (the objects 84 in the automatic provisioning receiver class are 
capable of recording requests to add or delete services from subscription packages, to 
acknowledge that the requested service modification(s) (be they adding a service to a 
subscription package or deleting a service from a subscription package) have been 
scheduled, and to deliver the requested service modification(s) to the appropriate 
objects for implementing the change(s)) ( column 8, lines 47-60; column 10, column 9, 
lines 50-65; lines 13-20). Therefore, it would have been obvious to one having ordinary 
skill in the art at the time of the invention was made for Corriqan et al to include at least 
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a step of converting a subscription type. One would have been motivated to do in order 
to make the system flexible. 

Claim 19: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 18 above, and Corriqan et al further 
discloses that the system further comprises at least one of explicit and implicit assigning 
the security options to object members of a class (security future such as white list or 
blacklist are used to authenticates access to particular services (column 5, lines 27-30). 
Claim 20: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 18 above, and Corriqan et al further 
discloses that the system further comprises accessing database via an application 
programming interface (in one embodiment, the portal comprises a secure web-bases 
self provisioning interface comprising means for setting mobile network subscribers to 
select a portfolio of personalized services (column 2, lines 53-57). 
Claim 21: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 20 above, and Corriqan et al further 
discloses a step of authorizing the API (the node controls all subscriber accesses to the 
network operator managed service portfolio and authenticates the ID to verify that the 
subscriber is authorized (column 5, lines 33-38). 

Claim 22: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 21 above, and Corriqan et al further 
discloses that the system further comprises returning an error code if an authorization 
procedure fails (the push server also support the push access protocol result 
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notification. It will acknowledge successful or report unsuccessful transmission and 
delivery of the information pushed and return a status) (column 1 1 , lines 10-1 5). 
Claim 23. Corriqan et al and Beckwith et a I disclose a system to provide access control 
to individual properties of an object as in claim 21 above, and Corriqan et al further 
discloses a step of analyzing a simple object request (a mobile user service request 
reaches the node as URL request in http format, and the node presents a login screen. 
The user inputs access security codes and the node interfaces on the Internet side to 
have the required content delivered) (column 4 lines 1-10). 

Claim 24: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 21 above, and Corriqan et al further 
discloses a step of analyzing one or more security credentials (verification of subscriber 
access rights is an intrinsic part of the session management functions provided by the 
portal (column 9, lines 15-20). 

Claim 25: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 24 above, and Corriqan et al further 
discloses that the system further comprises employing a cache to process the 
credentials (portal comprises a customer care provisioning interface and a provisioning 
database) (column 2, lines 65-68, fig 2) 

Claim 26: Corriqan et al and Beckwith et al disclose a system to provide access control 
to individual properties of an object as in claim 18 above, and Corriqan et al further 
discloses that the system further comprises a subscription platform service (the platform 
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comprises means for controlling subscriber access according to security criteria (column 
2, lines 5-10). 

Claim 27: Corriaan et al and Beckwith et a I disclose discloses a system to provide 
access control to individual properties of an object as in claim 18 above, and further 
discloses that the security options are associated with default security parameters (a 
generic subscriber class which is defined within the portal and represents common 
characteristics of all subscribers) (column 8, lines 44-48). 
Claim 28: Corriaan et al and Beckwith et al disclose discloses a system to provide 
access control to individual properties of an object as in claim 18 above, and Corrigan et 
al further discloses that the system further comprises overriding default security 
parameters with other options (from the generic subscriber class are derived many 
subscriber sub-class that allow the portal to manage subscriber profiles across a wide 
range of different technologies) (column 8, lines 47-50). 

Claim 29: Corriaan et al and Beckwith et al disclose discloses a system to provide 
access control to individual properties of an object as in claim 18 above, and Corrigan et 
further discloses that the system further comprises employing an intermediate proxy 
that places call in a subscription on behalf of another tenant (the wireless application 
protocol (WAP) is a complete WAP capable mobile stations to access applications and 
services which may be hosted either within the network operator's own domain or in 
another location (column 10, lines 50-55). 
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10. Claims 4, 7 and 13-16 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Cheng (US 7,096,491 ) in view of Swiff et al (US 7, 1 1 3,994) in further 
view of Corriqan et al (US 6,640,097). 

Claim 4. Cheng and Swift et a I discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 1 above, while neither of them 
explicitly discloses that the system further comprise a subscription platform to facilitate 
automated billing and provisioning accounts. However, Corrigan et al discloses a similar 
system, which discloses a subscription platform to facilitate automated billing and 
provisioning accounts (column 4, lines 45-50). Therefore, it would have been obvious to 
one having ordinary skill in the art at the time the invention was made to modify the 
combined teaching of Cheng and Swift et al such as to include a subscription platform 
to facilitating automated billing and provisioning accounts. One would have been 
motivated to do so in order to facilitate accounts management. 

Claim 7: Cheng and Swift et al discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 6 above, while neither of them 
explicitly discloses that the system further comprise a component to override the default 
security information with higher or different security options. However, Corrigan et al 
discloses a similar system, which further comprises a component to override the default 
security information with higher or different security options (from the generic subscriber 
class are derived many subscriber sub-class that allow the portal to manage subscriber 
profiles across a wide range of different technologies) (column 8, lines 47-50). I 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 



Application/Control Number: 10/729,515 Page 13 

Art Unit: 2136 

the invention was made to modify the combined teaching of Cheng and Swift et al such 
as to override default security with higher or different security options. One would have 
been motivated to do in order to make the system efficient. 

Claim 13: Cheng and Swift et al discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, while neither of 
them explicitly discloses that the system further comprises al least one of a sign-up API 
caller, an account management API caller, and a customer care API caller. However, 
Corrigan et al discloses a similar system, which further discloses a customer care 
provisioning interface including a device provisioning function which enables the 
operator to ensure that content is matched to the device type (column 5, lines 10-15). 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 
the invention was made to modify the combined teaching of Cheng and Swift et al such 
as to include a customer care API caller. One would have been motivated to do in order 
to simplify service management. 

Claim 14: Cheng , Swift et al and Corrigan et al discloses a system that facilitates 
access to a plurality of shared software objects by disparate entities as in claim 13 
above, Corrigan et al further discloses disclose that the system further comprises al 
least one API related to at least of a sign-up API group, an account management API 
group, a customer care API group, and object designer API group (to provide access 
control to individual properties that further a customer care provisioning interface 
including a device provisioning function which enables the operator to ensure that 
content is matched to the device type) (column 5, lines 10-15). Therefore, it would have 
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been obvious to one having ordinary skill in the art at the time the invention was made 
to modify the combined teaching of Cheng and Swift et a I such as to include a customer 
care API group. One would have been motivated to do in order to make the system 
efficient. 

Claim 15: Cheng and Swift et a I discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, while neither of 
them explicitly discloses that the system further comprises an authorization logic that 
determines whether an API can access an object via an access rights set. However, 
Corrioan et al discloses a similar system, which further discloses that the system further 
comprises an authorization logic that determines whether an API can access an object 
via an access rights set (to provide access control to individual properties that further 
discloses a node acting as a service manager for mobile subscriber. It controls all 
subscriber accesses to the network operators managed service portfolio and 
authenticates the subscriber ID to verify that the subscriber is authorized to access a 
particular service before opening a secure connection) (column 5, lines 35-40). 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 
the invention was made to modify the combined teaching of Cheng and Swift et al such 
as to include an authorization component. One would have been motivated to do so in 
order to restrict and control access to various components and services provides within 
the system. 

Claim 16: Cheng and Swift et a I discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, while neither of 
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them explicitly discloses that the system further comprises at least one of a restricted 
audience offer, a conversion component, and a payment instrument component. 
However, Corriqan et al discloses a similar system, which further discloses that that the 
system further comprises at least one of a restricted audience offer, a conversion 
component, and a payment instrument (to provide access control to individual 
properties that further discloses a payment management class from which are derived 
two sub-classes post-paid and pre-paid) (column 10, lines 20-25). Therefore, it would 
have been obvious to one having ordinary skill in the art at the time the invention was 
made to modify the combined teaching of Cheng and Swift etal such as to include a 
payment component. One would have been motivated to do so in order to restrict and 
control access to various components and services provides within the system. 

1 1 . Claims 9-12 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Cheng (US 7, 096,491) in view of Swift et al (US 7,1 1 3,994) in further view of Garg et al 
(US 6,289,458). 

Claim 9: Cheng and Swift et al discloses a system that facilitates access to a plurality of 
shared software objects by disparate entities as in claim 1 above, while neither of them 
explicitly discloses a management portal to facilitate authorization. However Garg et al 
discloses a system to provide access control to individual properties of an object, which 
comprises a management portal to facilitate authorization (file system manger maintains 
and coordinates access to file system) (column 7, lines 25-29). Therefore, it would have 
been obvious to one having ordinary skill in the art at the time the invention was made 
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to modify the combined teaching of Cheng and Swift et a I such as to include a 
management portal. One would have been motivated to do so in order to help maintain 
the integrity of the system by not allowing changes to be made to the software by any 
entity, both known and unknown, scrupulous and unscrupulous. 
Claim 10: Cheng and Swift et al discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, while neither of 
them explicitly discloses a component to provide an explicit security mapping for an 
object. However, Garg et al discloses a system to provide access control to individual 
properties of an object which, further comprises a component to provide an explicit 
security mapping for an object (the access control list contains zero or more access ' 
control entries, which define the access control applied to the object. Each entry in the 
list defines a set of permission to be applied to a particular UUSERID or GROUPID with 
respect to either the object as a whole or individual properties of object. Desirably the 
order of entries in the access control list is significant) (column 8, lines 35-55). 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 
the invention was made to modify the combined teaching of Cheng and Swift et al such 
as to include a management portal. One would have been motivated to verify this in 
order to help maintain the integrity of the system by not allowing changes to be made to 
the software by any entity, both known and unknown, scrupulous and unscrupulous. 
Claim 11. Cheng and Swift et al discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, while neither of 
them explicitly discloses a component to enable an implicit security mapping from an 
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explicit mapped object or to derive an implicit security permission by utilizing related 
objects. However, Garq et al discloses a system to provide access control to individual 
properties of an object as in claim 1 , above and further comprises a component to 
enable an implicit security mapping from an explicit mapped object or to derive an 
implicit security permission by utilizing related objects (security descriptor provides 
details on the security and access control applicable to object (column 8, lines 25-30). 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 
the invention was made to modify the combined teaching of Cheng and Swift et al such 
as to include a management portal.. One would have been motivated to verify this in 
order to help maintain the integrity of the system by not allowing changes to be made to 
the software by any entity, both known and unknown, scrupulous and unscrupulous. 
Claim 12: Cheng and Swift et a I discloses a system that facilitates access to a plurality 
of shared software objects by disparate entities as in claim 1 above, while neither of 
them explicitly discloses that the verification component employs operating system 
identities to facilitate security authorization procedures. However, Garg et al discloses a 
system to provide access control to individual properties of an object which, further 
discloses the verification component employs operating system identities to facilitate 
security authorization procedures (security descriptor contains various properties 
including the owner security identifier and access control list) (column 8, lines27-30). 
Therefore, it would have been obvious to one having ordinary skill in the art at the time 
the invention was made to modify the combined teaching of Cheng and Swift et al such 
as to include a management portal. One would have been motivated to verify this in 
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order to help maintain the integrity of the system by not allowing changes to be made to 
the software by any entity, both known and unknown, scrupulous and unscrupulous. 

1 2. Claim 30 is rejected under 35 U.S.C. 1 03(a) as being unpatentable over Corrigan 
et al (US 6,640,097) in view of Swift et al (US 7,1 1 3,994). 
Claim 30: Corrigan et al discloses a system to provide access control to individual 
properties of an object comprising: 

i. Means for authenticating at least one entity attempting access to an online 
billing and service,; (subscriber authentication) (column 4, line 33); 

ii. Means for authorizing the at least one entity and authorizing the another 
entity upon authorization of the at least one entity (authorities subscriber access 
through white and black lists) (column 5, lines50-55)); and 

iii. Means for associating a security parameter with at least one business 
object from a globalize region of database (the data structure includes an 
identifier used to indicated a specific object property or set of properties to which 
the permission apply) (column 3, lines 35-40). 

But does not explicitly discloses that wherein the at least one entity is attempting access 
on behalf of another entity, the entity and the another entity are each an individual 
human or business. However, Swift et a I discloses a system of proxy authentication in a 
secure network, which further discloses wherein the entity requests access to an object 
on behalf of another entity (authorized proxy client to access a service on behalf of a 
user) (column 2, lines 27-35). Therefore, it would have been obvious to one having 
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ordinary skill in the art at the time the invention was made to permit an entity to call on 
behalf of another entity and to verify the authenticity of the entity in Corriqan et al 's 
disclosure. One would have been motivated to verify this in order to help maintain the 
integrity of the system by not allowing changes to be made to the software by any entity, 
both known and unknown, scrupulous and unscrupulous. 

Response to Arguments 

13. Applicant's arguments with respect to claims 1-16 and 18-32 have been 
considered but are moot in view of the new ground(s) of rejection. 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Fatoumata Traore whose telephone number is (571) 
270-1685. The examiner can normally be reached Monday through Thursday from 7:00 
a.m. to 4:00 p.m. and every other Friday from 7:30 a.m. to 3:30 p.m. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Nassar G. Moazzami, can be reached on (571) 272 4195. The fax phone 
number for Formal or Official faxes to Technology Center 21 00 is (571 ) 273-8300. Draft 
or Informal faxes, which will not be entered in the application, may be submitted directly 
to the examiner at (571 ) 270-2685. 
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Any inquiry of a general nature or relating to the status of this application or 
proceeding should be directed to the Group Receptionist whose telephone number is 
(571)272-2100. 



FT 

Thursday, January 3 rd , 2008 



Nassar G. Moazzami 
Supervisory Patent Examiner 



